Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdateService_v2' = '"%HOMEPATH%\Start Menu\Programs\Startup\win.update.exe" /2'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdateService_v3' = '"%APPDATA%\win.update.exe" /3'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdateService_v0' = '"%ALLUSERSPROFILE%\Start Menu\Programs\Startup\win.update.exe" /0'
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] 'WindowsUpdateService_v1' = '"%HOMEPATH%\My Documents\win.update.exe" /1'
- %HOMEPATH%\Start Menu\Programs\Startup\win.update.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\win.update.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\update[1]
- %APPDATA%\win.update.exe
- %HOMEPATH%\My Documents\win.update.exe
- %HOMEPATH%\Start Menu\Programs\Startup\win.update.exe
- %APPDATA%\win.update.exe
- %ALLUSERSPROFILE%\Start Menu\Programs\Startup\win.update.exe
- %HOMEPATH%\My Documents\win.update.exe
- %HOMEPATH%\Local Settings\Temporary Internet Files\Content.IE5\69I9OPW5\update[1]
- 'lq######glnowjxfij.co.cc':80
- 'lq######glnowjxfij.cz.cc':80
- 'lq#####vglnowjxfij.tk':80
- lq######glnowjxfij.co.cc/update/
- lq######glnowjxfij.cz.cc/update/
- lq#####vglnowjxfij.tk/update/
- DNS ASK lq######glnowjxfij.co.cc
- DNS ASK lq######glnowjxfij.cz.cc
- DNS ASK lq#####vglnowjxfij.tk
- ClassName: 'Indicator' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''